Selfhosting

201 readers

1 users here now

All things selfhosting and homelab related Resources: - https://github.com/awesome-selfhosted/awesome-selfhosted - https://github.com/awesome-foss/awesome-sysadmin

founded 1 year ago

How are people doing HTTPS? (kbin.social)

submitted 1 year ago by [email protected] to c/[email protected]

20 comments fedilink hide all child comments

I have a PC I have installed Portainer on, with various docker services (home assistant, jellyfin, etc..) with an ISP supplied router fixing various device IP addresses and reaching out to dyndns.

I really want to move everything over to HTTPS connections by supplying certificates, tls termination, etc .
The issue I have is self signed certificates mean I have to manage certificate deployment to everything in the house.

I figure I need to link a domain to the DynDNS entry and arrange certs for the domain. However I can't make the link function and everywhere wants >£100 to generate a certificate.

How are people solving this issue?

you are viewing a single comment's thread
view the rest of the comments

[–] [email protected] 2 points 1 year ago (2 children)

That's essentially what I ended up having to do, but keep hoping that I've missed something.

I also find that people seem to ignore this route, assuming people are fine with public dns pointing at your home ip and http/https ports open.

[–] [email protected] 2 points 1 year ago

Gotta live on the edge, man. Open up your router. All ports. Firewalls are for pansies. Connect your laptop directly to the modem. Enable ssh and rdp. What could go wrong?

[–] [email protected] 1 points 1 year ago

You can setup a VPS between the internet and your home network to limit the exposition of your home network. When a client pings yourdomain.com, it sees the ip of the VPS and not the IP of your home network.

Otherwise, a VPN + home CA server will make your home network accessible and encrypted as well